Session duration ?

  • Resolved kjc041056

    (@kjc041056)


    3 years, 9 months ago

    I have installed your plugin which has proved very useful as I am trying to understand how Sessions in Worpdpress are managed.

    I have researched and read in various places about the Cookies that WP uses to maintain session state. I also have seen in the Users “Sessions Settings” tab where “Standard cookie duration” can be set and that it defaults to 2 days.

    I have been studying this for the past week and generally see that if I log in as an Admin user, I get a 2 day session duration.

    However, I also see that my wife who is an Admin user has session duration of a year (356days). She has been working on the site for many years. However, when I look at her “Standard cookie duration” – it is 2 days.

    Can you help with my understanding ?

    Thanks,
    Keith.

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Author Pierre Lannoy

    (@pierrelannoy)

    Hello @kjc041056 !

    There’s mainly (and potentially) 3 reasons why you can see such thing:
    – Your wife use and old cookie which was present in her browser cache prior the plugin installation. You can verify this assumption by deleting all sessions belonging to her account, purging the browser cache and asking her to open a new session.
    – She have more than one role on the site (like admin + something else). If so, you have to verify plugin settings for all roles she may have – regarding the settings you’ve set (cumulative or least privileges).
    – There’s another plugin on your site that modifies cookie durations. If so, just tell me its name and I will see how to deal with it.

    Pierre

    Thread Starter kjc041056

    (@kjc041056)

    Hello Pierre,
    Thanks for your reply. After I posted the support request, I cleared out all of the old sessions and as you suggest, logged out of the active sessions and back in. We now have a small set of sessions that are in use on our various devices. I also now see that not logging out of a session but just closing the browser window leads to dormant sessions being left without practical use.

    I have also increased cookie duration to 28 days and that is working OK. Going forward and with your plugin, I intend to track sessions more closely. I like the fact that the active session for a login blinks.

    The 365 day sessions have now all gone. There were two and I cannot see how they were set that way. As you say, it could be another Plugin but I have not found it yet. If I do, I will let you know.

    Thanks,
    Keith.

    • This reply was modified 3 years, 9 months ago by kjc041056.
    Thread Starter kjc041056

    (@kjc041056)

    Pierre – I remembered something that may be a factor. We use Jetpack and the setting “Allow users to log into this site using WordPress.com accounts” was in use. I am not sure if this was a factor but it had been set some years ago and it is not a feature we want to use going forward. Without really being clear on what it was doing, my wife had been using it when logging in. I did not however use it.
    So now that is disabled plus we have a new session duration set and all seems to be working fine.

    Thanks,
    Keith.

    • This reply was modified 3 years, 9 months ago by kjc041056.
    Plugin Author Pierre Lannoy

    (@pierrelannoy)

    Hello @kjc041056 !
    And thank you for your kind words ??

    I also now see that not logging out of a session but just closing the browser window leads to dormant sessions being left without practical use.

    You’re right, that’s the way many CMS (not really) handle sessions, hence the purpose of the session idle time in the plugin.

    Regarding Jetpack, yes it have impacts on users’s sessions. Notably the cookies timeout. It always take the “remember me” value.

    Nevermind… The good news is it’s now working ??

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘Session duration ?’ is closed to new replies.